Holiday shopping season is a prime target for cybercriminals! From credit card skimmers on hacked e-commerce sites to phishing scams, the risks are higher than...
MoeSec Research Blog
Fake Browser Update Scam Infects WordPress Sites
A new wave of JavaScript malware is targeting WordPress websites, compromising their security and tricking visitors with convincing fake browser update prompts. This sophisticated infection...
PrestaShop Credential-Stealing Skimmer Via Image Beacons
JavaScript credential skimmer (formjacking) injected into PrestaShop, stealing admin and customer logins
Don’t Let Your Website Get Tricked this Halloween!
Digital monsters attacking your site? Fight back with MoeSec.com! Clean & Protect your Website Now!
Why Two-Factor Authentication (2FA) Is Essential for Website Security
2FA is no longer optional - it’s a must-have for any WordPress website. The free MoeSec WordPress Security Plugin gives you powerful, flexible controls to...
Why WordPress Security Matters? Free or Premium
Secure your WordPress website today with MoeSec’s free wordpress security plugin as your foundation, and upgrade to the Premium Website Security Platform for the ultimate...
New Version of MoeSec WordPress Security Plugin: Packed With Powerful New Features!
We’re excited to announce the release of the latest version of the Free MoeSec WordPress Security Plugin version 1.8 the most comprehensive and user-friendly security...
WebSocket Malware Steals Payment from PrestaShop Sites
The analyzed JavaScript injection is an obfuscated, highly evasive malware loader found on compromised PrestaShop websites. It enables attackers to steal sensitive data, disrupt business,...
WordPress Blockchain-Based JavaScript Malware
WordPress JavaScript injection attacks, especially those using remote code loaders and blockchain-based C2, represent a new, stealthy, and highly adaptive threat. Quick detection and removal...
Magecart-Style Credit Card Skimmer Targeting WooCommerce
A sophisticated JavaScript-based credit card skimmer/stealer has been discovered on a compromised WooCommerce-powered WordPress e-commerce website. The malware leverages obfuscation, external payload delivery, and advanced...